| عنوان | 南昌蓝智科技有限公司 Jspxcms 10.2.0 Cross-site scripting |
|---|
| الوصف | Jspxcms is a scalable, enterprise-class open source web content management system (CMS).
Jspxcms v10.2.0 has a cross-site scripting vulnerability due to unfiltered title and tag parameters in background survey selection, which can be exploited by an attacker to execute arbitrary Web scripts or HTML by injecting well-designed payloads. |
|---|
| المصدر | ⚠️ https://github.com/sweatxi/BugHub/blob/main/jspXCMS-%20Survey%20label.pdf |
|---|
| المستخدم | hexixi (UID 59932) |
|---|
| ارسال | 14/01/2024 11:37 AM (2 سنوات منذ) |
|---|
| الاعتدال | 19/01/2024 10:40 AM (5 days later) |
|---|
| الحالة | تمت الموافقة |
|---|
| إدخال VulDB | 251545 [Jspxcms 10.2.0 Survey Label البرمجة عبر المواقع] |
|---|
| النقاط | 18 |
|---|